QuickPwn

As announced yesterday, Dev Team member MuscleNerd did a demo of UltraSn0w, the new software unlock for the iPhone 3G (skip to 2.20 min on the video below). Unlike its predecessor YellowSn0w, UltraSn0w will unlock your iPhone 3G no matter what firmware, bootloader or baseband you have, as long as you have the new 3.0 firmware installed.

The actual program that UltraSn0w injects into the baseband to accomplish the unlock is the exact same one the Dev Team developed for YellowSn0w. What changed is that the Dev Team found a new “hole” to inject the unlocking payload.

During his demo, MuscleNerd successfully jailbroke his iPhone 3G and proved it by inserting a T-Mobile SIM card.

UltraSn0w won’t be available until Friday and like YellowSn0w, it will be downloadable through Cydia. Your iPhone will obviously have to be jailbroken and the Dev Team will release the necessary tools for that (QuickPwn and PwnageTool) soon.

Again, just to make this clear, there is no baseband downgrade needed. You can just upgrade to 3.0 tomorrow and wait for the Dev Team to push its unlocking tools and UltraSn0w on Friday.

Note that this unlock is only valid for the iPhone 3G. According to the Dev Team, this hack may be applicable to the new iPhone 3G S if it can be jailbroken, which should happen sometimes soon. Go Dev Team!

Earlier this week, we talked about the new iPhone 3.0 Beta 3. It didn’t take long to iPhone hackers to update an unofficial version of QuickPwn to jailbreak the new beta firmware. As usual, this QuickPwn is not the official release by the Dev Team and using it might prevent you from ever being able to unlock your iPhone using YellowSn0w. So far, this jailbreak only works with iPhone 2G, 3G and 1st gen iPod Touch. It’s also worth noting that this version of QuickPwn will not install Cydia on your iPhone. Instead, it will install Icy, a Cydia “competitor”. I do not recommend using this jailbreak. As a matter of fact, I don’t even recommend installing the 3.0 Beta as it is still a little unstable and will most likely prevent you from unlocking in the near future. That’s just my opinion anyways and you are obviously free to do whatever you want. You can download QuickPwn for 3.0 Beta 3 and read the QuickPwn tutorial for instructions.

If you like this post, please feel free to digg it, or subscribe to our RSS feed, or follow me on Twitter, or all of the above 😉

[digg-me]This guide will show you how to use QuickPWN to jailbreak your iPhone firmware 2.2.1. Please read carefully all the steps and warnings before attempting to use QuickPWN to jailbreak your iPhone. The following tutorial is for PC users.

UPDATE: I closed the comments on this post. If you have any question about QuickPwn, please ask your question in the forum.

I thought the Dev Team would release updated version of QuickPWN and PwnageTool sometimes next week, but as usual, they were faster than I expected. In a blog post, the Dev Team gives us more info about these 2 jailbreaking tools and also tells us about the dos and donts.

I could try to paraphrase what they said but I think it’s better I just copy/paste their post entirely. I do not like doing this but I believe it is very important information that shouldn’t be disregarded.

I highly suggest you go visit the Dev Team blog and leave a nice comment over there. Click here to read this post on the Dev Team blog.

You can expect a QuickPWN guide and tutorial from me within the next couple hours, so stay tuned!

This is the low down on our tools for use with the 2.2.1 firmware from Apple, read the whole post in full before attempting anything.

GOLDEN RULE: If you have a 3G iPhone running 2.2 firmware and you want to keep your ability to use yellowns0w (or the option to use it in the future) do NOT use QuickPwn, and do not use the official ipsw or the iTunes update process without using PwnageTool. Yellowsn0w will NOT work with the baseband version (02.30.03) that is present in the recent 2.2.1 update – you will need to create a custom ipsw that will allow you to update safely without affecting the baseband. Please read all parts of this post before downloading and using these tools. Read items 1, 2 and 3 again and again. At the bottom of this post are the bittorrent files for the latest versions of PwnageTool and QuickPwn. These apps are suitable for the recent 2.2.1 release. The Yellowsn0w version has been updated to 0.9.7. Yellowsn0w is available from Cydia or Installer – this version allows compatibility with pwned 2.2.1 system (not baseband) – again – remember 0.9.7 yellowsn0w DOES NOT WORK WITH 2.2.1 (02.30.03) directly – you need to be running a ‘pwned’ version of 2.2.1 which doesn’t upgrade the baseband. Users of OS X 10.5.6 will be unable to use DFU mode correctly, please see the note towards the end of this post to easily fix this issue.

Baseband 101

The ‘baseband’ is the generic name given to the internal components of the iPhone that handle the phone calls and Internet access. This ‘baseband’ is a tiny and unique independent computer system that runs inside your iPhone, it is separate to the main system that handles the applications (such as email and google maps) and it talks to the main part of the phone over an internal communications network. Think of it like a cable modem or other peripheral that is attached to your home PC that needs occasional updates. When a software update is released and presented to you within iTunes the baseband is sometimes updated (to fix bugs or add new features). The 2.2.1 update for the iPhone 3G contains such an update, so running the vanilla updater straight away with iTunes will reprogram and update the baseband. This could be bad for certain people, depending on your ultimate aim.

SIM Free/SP Unlocked/Factory Unlocked iPhone 3G

This applies if you bought your iPhone 3G for $$$$$$$. This model of iPhone 3G doesn’t have an Service Provider lock (aka factory unlocked) and you are able to put any SIM card into the phone and get service. Your phone is already unlocked so you do not need to worry about baseband updates, simply upgrade to 2.2.1 using iTunes and then use QuickPwn to Pwn and Jailbreak. This will add Cydia and Installer too.

Locked iPhone 3G – Preserve Baseband

This applies if you have a locked iPhone 3G and you wish to update to 2.2.1 but preserve the iPhone’s current baseband software. Preserving the baseband will ensure that you can still use “yellowsn0w” the iPhone 3G unlock application. To upgrade your phone to 2.2.1 and preserve the state of the baseband you need to create a custom .ipsw with PwnageTool. This custom .ipsw will not contain the baseband update but of course will still give you any new stuff from 2.2.1

There are plenty of tutorials about this process on the web, but PwnageTool contains intuitive graphics and easy to follow prompts that should have you up and running in no time at all. Please note: PwnageTool is only available for Mac OS X.

Locked iPhone 3G

If you are using your iPhone with one carrier and have no interest in the possibility of an iPhone 3G unlock in the near future then just restore or upgrade to 2.2.1 using iTunes and use QuickPwn to Jailbreak and add Cydia and Installer.

iPhone 2G (1st Generation)

Update or Restore your iPhone 2G with iTunes then run QuickPwn to do the magic, ‘nuff said, you don’t need to worry about anything.

iPod Touch 1G (Original iPod Touch)

Update to 2.2.1 with iTunes and run QuickPwn.

iPod Touch 2G (New iPod Touch)

Sorry, no support at this time, but Redsn0w is being actively researched and developed.

Fixing DFU mode on 10.5.6

As noted previously OS X 10.5.6 introduced a bug that affected the use of DFU mode. with some Macs. There have been previously published hacks and techniques to fix this, but here is another method that can be used to easily restore functionality.

You will need an account with ADC (Apple Developer Connection) this is free and takes a few minutes to sign up, you should read the terms and conditions carefully and you should only sign up if you are thinking of developing applications in the future – http://developer.apple.com/mac/ Download the disk image “IOUSBFamily Log release for Mac OS X 10.5.5 Build 9F33” (yes, that is a “5” in 10.5.5 – this is a developer debug package of the USB kernel extension). Install IOUSBFamily-315.4.1.pkg from within the disk image Reboot your system!

I knew it wouldn’t take long for some hacker to come up with an unofficial version of QuickPWN to jailbreak the new firmware 2.2.1. This time, it’s Russian hacker Vortex that created the bundles and if I can give you a piece of advice, STAY AWAY from it.

People using this unofficial QuickPWN had varied results. So again, wait for the Dev Team to come up with an official version. They are most likely already working on it and I bet you we’ll have updated versions of QuickPWN and PwnageTool within a week.

As usual, I will give you the heads up when I have more info!

If you really can’t wait and want to take the risk of messing up your iPhone, then you can download this unofficial version of QuickPwn here.

Since firmware 2.2.1 was released yesterday, a lot of concerns were raised whether or not you should update. The quick answer is NO, do not update if you care about your jailbreak or your unlock. MuscleNerd released a video on Qik giving us more info about the situation. Below are notes from the video.

About the iPhone 3G:

If you use YellowSn0w, you do not want to update to 2.2.1 as it will remove the possibility to install it. The only way you could do it is my installing a custom firmware that doesn’t update the baseband. PwnageTool and QuickPwn do just that but they haven’t been updated for 2.2.1 yet so wait for them to come out.

About the iPod Touch 2G:

The 2.2.1 firmware doesn’t affect your ability to jailbreak your iPod Touch 2G. It didn’t remove the ability for the Dev Team to do a tethered jailbreak. The Dev Team is still looking for an exploit to allow an untethered jailbreak. In other words, hang in there, they are working on it.

About iPhone 2G and iPod Touch 1st Gen:

2.2.1 doesn’t affect your ability to jailbreak or unlock but again, wait for an updated version of QuickPwn and PwnageTool to do that.

As usual, I will report to you as the news come about 2.2.1 and jailbreaking/unlocking so you may want to subscribe to the RSS feed to be notified in time.

A new application called JailBird is about to come out, and the developer, difrnt, already talks about it as the replacement for WinPwn.

According to difrnt: Jailbird is meant to be a replacement for WinPwn, this means unlike Quickpwn, you will be able to generate a Custom IPSW and change your partition size! Jailbird will support all 2.0 firmwares from 2.0 – 2.2 and will be the first GUI based pwnage tool for Windows that supports FW 2.2. It was quite unclear to me what JailBird does so I emailed difrnt and asked what device it jailbreaks or unlocks and why would I use JailBird over QuickPwn.

Here is his reply: It will Jailbreak the iPhone 2G, iPhone 3G, and the iPod Touch there is not yet support to jailbreak the iPod 2G.

Jailbird works like Pwnage-Tool just on the windows platform.

Unlike QuickPwn, Jailbird will be able to generate a custom IPSW (firmware) that when restored with iTunes will return a Jailbroken iDevice unlike quickpwn where you are required to restore the default firmware then “quickpwn it” to get a jailbroken device. I look forward to the release of this new tool so I can try it out and see what it’s worth.

Last Wednesday, I decided to update my iPhone 3G to the newly released 2.2 firmware. Although jailbreaking is fairly easy and doesn’t require much skills, I am never really excited about doing it as it is very time consuming. What’s time consuming about it you will ask? Well, first, you have to download the latest version of iTunes (I only use iTunes about once a month and I always wait for the next jailbreak method to update it), which always takes a few minutes. Then you have to install iTunes and reboot your computer. Once iTunes is taken care of, you have to download your firmware, download QuickPwn, etc…

This guide will show you how to use QuickPwn 2.2 to jailbreak and/or unlock your iPhone 2G. This tutorial is for PC users but I assume the steps are the same on a Mac. This tutorial is NOT for iPhone 3G. If you’re only interested in jailbreaking your iPhone (not unlockink), please may read my QuickPwn 2.2 guide.

If you like this post, please feel free to digg it, or subscribe to our RSS feed, or follow me on Twitter, or all of the above 😉

IMPORTANT: READ EVERY SINGLE WORD OF THIS POST BEFORE ATTEMPTING TO UNLOCK YOUR IPHONE

Note that the comments are closed. If you have any question about the unlocking process, please ask in the forum.

Before doing anything, I suggest you read this important message from the Dev Team.

Click here to download the MobileInstallation patch for 2.2

Note that you are pwning your iPhone at your own risk… Success is not guaranteed!

Make sure you have downloaded the latest version of iTunes. Update or restore your iPhone to firmware 2.2 using iTunes. Restoring is the preferred way to do it as it won’t waste space on your iPhone. Plug your iPhone and make sure iTunes has detected it. If you’re iPhone is already jailbroken, you may want to remove all the apps that you have downloaded from Cydia. Certain applications such as Winterboard, Categories and more cause trouble. You will be able to reinstall them later. Create a folder called “QuickPwn” on your desktop. Download your appropriate iPhone 2.2 firmware from here. Also download the QuickPwn 2.2 from here, the bootloader files BL 3.9 and BL 4.6 from here too. Place these files in the newly created QuickPwn folder on your desktop. Extract QuickPwn zipped file. Launch QuickPwn and select your iPhone version. You will be asked to select your iPhone firmware. Select the firmware you downloaded in Step 1. If the firmware you selected is valid, QuickPwn will show a green checkmark. Click Continue. You will then have the opportunity to select Cydia, Installer, custom boot logos and “unlock iPhone”. You have to select Cydia and “unlock iPhone”. You may also choose to install Installer. Click Next. You will now be asked to select your bootloader files. Click the Browse button and select the 3.9 bootloader from the Pwnage folder on your desktop. Likewise do the same thing for the 4.6 bootloader file. Then click the blue arrow button to continue. QuickPwn will now ask you to confirm that your iPhone is connected. Click the blue arrow to continue. QuickPwn will now automatically put your iPhone into recovery mode. Once its in recovery mode you will be prompted to: Hold the Home button for 5 seconds, Hold the Home and Power buttons for 10 seconds, then release the Power button and continuing holding the Home button until your iPhone is in DFU mode. Watch the prompts carefully and follow along. Once QuickPwn detects your iPhone in DFU mode, it will start the jailbreak process. Finally, QuickPwn will let you know that pwnage process was completed successfully. Done!

[digg-me]This guide will show you how to use QuickPwn 2.2 to jailbreak your iPhone. This tutorial is for PC users but I assume the steps are the same on a Mac.

UPDATE: THIS WILL ONLY WORK WITH FIRMWARE 2.2. IT WILL NOT WORK WITH 2.2.1 AS THERE IS NO JAILBREAK FOR IT YET. IF YOU ARE ON 2.2 THEN FOLLOW THESE INSTRUCTIONS. IF YOU ARE ON 2.2.1, THEN COME BACK TO THIS SITE IN A FEW DAYS WHEN WE FIND A SOLUTION TO JAILBREAKING IT.

UPDATE 2: I updated this guide for the newer firmware 2.2.1. Please go here for a QuickPWN 2.2.1 guide.

UPDATE 3: The comments are closed. If you have any question about jailbreaking, please ask it in the forum.

IMPORTANT: READ EVERY SINGLE WORD OF THIS POST BEFORE ATTEMPTING TO JAILBREAK YOUR IPHONE

If you like this post, please feel free to digg it, or subscribe to our RSS feed, or follow me on Twitter, or all of the above 😉

This QuickPwn 2.2 tutorial will be short as I have already posted a QuickPwn guide before. This guide only shows you how to jailbreak. If you want to learn how to unlock your iPhone 2.2 firmware, please read my iPhone 2.2 QuickPwn unlock tutorial.

The following is not applicable anymore since you can unlock your iPhone safely with this method.

IMPORTANT NOTE FROM THE DEV TEAM: If you are using your iPhone with one carrier and have no interest in the possibility of an iPhone 3G unlock in the near future then just restore or upgrade to 2.2 using iTunes and use QuickPwn to Jailbreak and add Cydia and Installer. Before doing anything, I suggest you read this important message from the Dev Team.

What does that mean? It means that you can only use this method if you don’t care about unlocking your iPhone in the future. If you’re a “legit” AT&T iPhone user and you have no interest in unlocking your iPhone in the future, then this is for you.

On the other hand, if you’re not a “legit” user or if you do want to be able to unlock your iPhone in the future, then this is NOT for you. If that’s the case, you will have to jailbreak your iPhone using PwnageTool, which will preserve your baseband.

Note that you are pwning your iPhone at your own risk… Success is not guaranteed!

Create a folder called “QuickPwn” on your desktop. Download a copy of your iPhone 2.2 firmware from here. Also download QuickPwn 2.2 from here. Place all these files in the newly created QuickPwn folder on your desktop. Unzip QuickPwn. Make sure you have downloaded the latest version of iTunes. If you have to update to the latest version of iTunes, I highly recommend you restart your computer after the update. Not restarting my computer after updating iTunes caused me trouble in the past… Plug your iPhone and make sure iTunes has detected it. If you’re iPhone is already jailbroken, you may want to remove all the apps that you have downloaded from Cydia. Certain applications such as Winterboard, Categories and more cause trouble. You will be able to reinstall them later. As an alternative solution, you may want to read by post about upgrading a jailbroken iPhone without using AptBackup, which saves your Cydia apps settings. Update or restore your iPhone to firmware 2.2 using iTunes. Restore is preferred as it won’t create any wasted space on your iPhone. Right after restoring your iPhone, launch QuickPwn. It should recognize your device automatically.

You will be asked to select your iPhone firmware. Select the firmware you downloaded in Step 1.

If the firmware you selected is valid, QuickPwn will show a green checkmark. Click Continue.

You will then have the opportunity to select Cydia,Installer, and custom boot logos. You have to at least select Cydia. You may also choose to install Installer .and check to BootLogos box if you want to replace your boot logo. Click Next.

QuickPwn will now ask you to confirm that your iPhone is connected. Click the blue arrow to continue.

QuickPwn will now automatically put your iPhone into recovery mode. Once its in recovery mode you will be prompted to: Hold the Home button for 5 seconds, Hold the Home and Power buttons for 10 seconds, then release the Power button and continuing holding the Home button until your iPhone is in DFU mode. Watch the prompts carefully and follow along.

Once QuickPwn detects your iPhone in DFU mode, it will start the jailbreak process.

Finally, QuickPwn will let you know that pwnage process was completed successfully.

Update: The Dev Team cracked the code again and you can now jailbreak your iPhone 2.2 firmware. I highly recommend you read this before doing anything!

Update 2: I wrote new tutorials on how to jailbreak or unlock your iPhone 2.2 firmware using QuickPwn:

jailbreak iPhone 2.2 unlock iPhone 2.2

Like I mentioned in my previous post, there is no jailbreak available so far for iPhone firmware 2.2. The Dev Team is working on it and from what I understand, it shouldn’t take too long… We believe that our Pwnage technique (and therefore the Jailbreak) isn’t affected, but PwnageTool and QuickPwn do not support this release as yet, so DO NOT install 2.2 using iTunes as you will lose your jailbreak. It’s also worth noting that if you’re on a jailbroken iPhone, you really don’t want to update using iTunes yet as it may modify your baseband and make future jailbreak and/or unlock impossible.

I suspect that it will take a few days to the Dev Team to update PwnageTool to allow it to jailbreak your iPhone firmware 2.2, so please hang on… Once PwnageTool is released, other methods including WinPwn, and QuickPwn will be following.

We will let you know as soon as PwnageTool, WinPwn, and QuickPwn are available, and we will also release our tutorials on how to use them. You may want to subscribe to our RSS feeds (if not done yet) to keep in touch and be notified as soon as the news fall.

After posting the QuickPwn 2.1 tutorial yesterday, I got many emails from people asking me if the method worked for unlocking iPhones. The answer is yes! It does work to unlock the iPhone. It only works with the 1st Generation iPhone though. So if you have an iPhone 3G, it’s not gonna work.

In the guide I posted yesterday, I show you how to jailbreak an iPhone (no matter what iPhone you have) but many people that are not really tech savvy asked me for a tutorial on how to unlock the iPhone 2G. So here we go…

Before starting, do not hold me responsible if something goes wrong. If you follow these instructions carefully, chances are you won’t have any problem. So read everything!

Now before we start the process, you need to make sure you have downloaded and installed iTunes 8 and backed up your iPhone. And there are a few files you need to download too. Create a folder on your desktop and save all these files in there:

QuickPwn 2.1 for Windows BL 3.9 BL 4.6 iPhone 2G 2.1 firmware

Connect your iPhone to your PC and open iTunes. Hold the Shift key and click “Restore” at the same time. You could click “Update” but that would eat up your disk space for nothing. See my previous post about that. So, when you click SHIFT + RESTORE, a window will pop up asking you to choose your firmware. Select the firmware you downloaded before Step 1. iTunes will then restore your iPhone to 2.1, which may take a while. Once iTunes has restored your iPhone to 2.1, launch QuickPwn. Make sure your iPhone is connected to your PC and click the blue arrow. Click the BROWSE button to locate your iPhone firmware you downloaded before Step 1. Select the firmware. QuickPwn will automatically check and make sure the ipsw (firmware) is correct. Click the blue arrow to go to the next step. Now select what you want to do. You HAVE TO install Cydia. Using custom logos and installing Installer is pretty useless at the time. Also make sure you check the “Unlock Phone” checkbox. Click the blue arrow to continue. You will then be asked to choose your BootLoader files you downloaded before step 1. Select them and click the blue arrow to continue. QuickPwn will ask you to confirm that your iPhone is connected to your computer. Make sure it is and click the blue arrow to continue. QuickPwn will now put your iPhone into recovery mode. Once it is in recovery mode you will be asked to: a) Hold the Home button for 5 seconds, b) Hold the Home and Power buttons for 10 seconds, c) Release the Power button and continuing holding the Home button until your iPhone is in DFU mode. QuickPwn gives you very detailed instructions to make it even easier for you! Once QuickPwn detects your iPhone in DFU mode, it will start the pwning process. Once pwned, QuickPwn will informa you that you successfully completed the pwnage process. Your iPhone will then proceed to run BootNeuter, which may take a few minutes, so be patient! Once done, your iPhone will reboot. Done!

How easy was that?

I closed the comments on this post but if you have any question about unlocking your iPhone 2G, please ask in the forum.